install and start firewall

khaledk2 · Dec 8, 2024 · db76dff · db76dff
1 parent 2a22791
commit db76dff
Showing 1 changed file with 21 additions and 4 deletions.
diff --git a/ansible/idr-firewall.yml b/ansible/idr-firewall.yml
@@ -5,13 +5,21 @@
     {{ idr_environment | default('idr') }}-omero-hosts
 
   tasks:
-    - name: install firwalld
+    - name: install python3-firewall
       become: true
       ansible.builtin.dnf:
         update_cache: true
-        name: python3-firewall
+        name:
+          - python3-firewall
+          - firewalld
         state: present
 
+    - name: Enable service firewall
+      ansible.builtin.service:
+        name: httpd
+        enabled: yes
+        state: started
+
     - name: Accept all traffic
       ansible.posix.firewalld:
         zone: public
@@ -29,12 +37,21 @@
 - hosts: "{{ idr_environment | default('idr') }}-proxy-hosts"
 
   tasks:
-    - name: install firwalld
+    - name: install python3-firewall
       become: true
       ansible.builtin.dnf:
         update_cache: true
-        name: python3-firewall
+        name:
+          - python3-firewall
+          - firewalld
         state: present
+
+    - name: Enable service firewall
+      ansible.builtin.service:
+        name: httpd
+        enabled: yes
+        state: started
+
     # Allow:
     # - all established/related in/out
     # - all internal localhost connections